Most concerning risks:
- Native Microsoft security flaws
- Social engineering attacks, such as phishing
- Attackers moving between AD on-premises and cloud
Top AD recovery concerns:
- Not having a post-cyber-attack recovery plan
- Inability to recover quickly
- Not having a defined responsibility for AD recovery
Actions in response to SolarWinds attack:
- 45% of organizations increased collaboration between operational and security teams
- 44% percent increased focus on closing AD security gaps, detecting attacks, and ensuring malware-free backups
- 37% added skilled practitioners to address AD security weaknesses
Unknown vulnerabilities top the list of Active Directory security concerns for IT security practitioners, according to a new report produced by Enterprise Management Associates (EMA) in collaboration with Semperis. Given that AD is a common attack vector for cybercriminals, it’s no wonder that unknown and unaddressed AD security gaps are a top priority. The new EMA report delves into challenges IT security practitioners face in closing AD security gaps and how organizations are responding to threats—like the SolarWinds attack—that demand a cross-organization response.
“Although it’s encouraging to see these evolving security practices and increased focus on securing Active Directory, there is still much work to be done,” said Paula Musich, EMA research director of risk and management.
Download the report for full details on how organizations are meeting identity system security challenges, including:
- Identifying Active Directory security risks
- Balancing Active Directory security on-premises and in the cloud
- Addressing gaps in Active Directory skill sets